Setup shorewall with Lan & Wan zone on same NIC, is it possible?
Hi all,
I have a home network consisting of 3 machines running Linux & Windows. I have a dedicated hardware firewall connecting my lan to the Internet.
I now want to configure the firewall on my Linux machine to allow access to shares on my win2k box, and was considering defining two zones to accomplish this.
My setup is as follows.
hardware firewall: IP 192.168.111.254
Linux machine: IP 192.168.111.11
win2k machine: IP 192.168.111.10
winxp machine: IP 192.168.111.15
From my linux machine the network would look like this:
The WAN Zone would be IP 192.168.111.254
The LAN Zone would be IP 192.168.111.2 to IP 192.168.111.20
Then I want to allow unrestricted traffic within the LAN Zone, and block all unnecessary traffic to the WAN Zone.
Can anyone tell me if this is possible? I have been looking at the documentation for Shorewall, and am a little unsure how to get this done.
My Linux machine is running Mandrake 10.0 Official.
A lot of rules have been defined by Mandrake, and I'm not sure which of these are necessary or not. Could anyone give me a hint to this?
Thanks for you help,
|